On occasion you might need the ability to obtain logging from hardware devices on your network, such as your router, sip phones, access points, etc... Most of these devices do not include real-time logging that can be used to help troubleshoot problems because of limitations in the device to store log entries to internal memory.
What most of them do have is the ability to send logs to a SysLog Daemon, such as Kiwi SysLog Server. What a SysLog Server does is listen for incoming UDP or TCP connections from devices that "speak" the SysLog language and writes the logs to the SysLog server drive. This extends the devices ability to write logs by sending the logging information across the network and offloading the logs to another computer. Here's an example of how to setup Sys Logging with SIP phone Snom 370 and Kiwi SysLog Server.
1. Download the Kiwi SysLog Server
2. Install the Kiwi SysLog server
3. Configure the SysLog Server - the only real configuration required is to decide whether to use TCP or UDP. My recommendation is to use UDP, the default UDP port is 514. Open Kiwi SysLog Server and select File, Setup, then under Inputs select UDP. Enable Listen for UDP Syslog messages and set Data encoding to System, and save the changes.
4. Your SysLog Server should be listening on UDP port 514 and waiting for incoming connections.
NOTE: If you have a firewall installed on your computer you must allow incoming connections to Kiwi.
Couple of tips before we setup the Snom 370 phone.
The phone will need to send to the IP address of the computer you installed Kiwi SysLog Server on, to find your IP open a DOS window and type ipconfig, the IP will be listed under your Ethernet adapter, for example, 192.168.0.5. To determine if Kiwi SysLog Server is listening on UDP port 514 type netstat -an and you should see an entry under UDP protocol for 0.0.0.0:514.
5. Setup your device (Snom 370). Login to the Web admin for your phone, select Advanced and then the Network tab. Near the bottom is a field for your SysLog server, enter 192.168.0.5 (your computers IP). Save the changes and reboot the phone. After a reboot your phone will write logs to your SysLog server.
